]> err.no Git - linux-2.6/commit
[NETFILTER]: bridge netfilter: deal with martians correctly
authorBart De Schuymer <bdschuym@pandora.be>
Tue, 5 Dec 2006 21:45:21 +0000 (13:45 -0800)
committerDavid S. Miller <davem@sunset.davemloft.net>
Thu, 7 Dec 2006 02:39:06 +0000 (18:39 -0800)
commitf216f082b2b37c4943f1e7c393e2786648d48f6f
tree28a97b72a7568f0428ebbe77228b1ac5d7f29eb1
parentece006416d4fb472f4d2114feede5665cff971b2
[NETFILTER]: bridge netfilter: deal with martians correctly

The attached patch resolves an issue where a IP DNATed packet with a
martian source is forwarded while it's better to drop it. It also
resolves messages complaining about ip forwarding being disabled while
it's actually enabled. Thanks to lepton <ytht.net@gmail.com> for
reporting this problem.

This is probably a candidate for the -stable release.

Signed-off-by: Bart De Schuymer <bdschuym@pandora.be>
Signed-off-by: Patrick McHardy <kaber@trash.net>
Signed-off-by: David S. Miller <davem@davemloft.net>
net/bridge/br_netfilter.c